Attacker Value
Unknown
(0 users assessed)
Exploitability
Unknown
(0 users assessed)
User Interaction
Unknown
Privileges Required
Unknown
Attack Vector
Unknown
0

CVE-2009-1385

Disclosure Date: June 04, 2009
CVE-2009-1385
Add MITRE ATT&CK tactics and techniques that apply to this CVE.

Description

Integer underflow in the e1000_clean_rx_irq function in drivers/net/e1000/e1000_main.c in the e1000 driver in the Linux kernel before 2.6.30-rc8, the e1000e driver in the Linux kernel, and Intel Wired Ethernet (aka e1000) before 7.5.5 allows remote attackers to cause a denial of service (panic) via a crafted frame size.

Add Assessment

No one has assessed this topic. Be the first to add your voice to the community.

CVSS V3 Severity and Metrics
Base Score:
None
Impact Score:
Unknown
Exploitability Score:
Unknown
Vector:
Unknown
Attack Vector (AV):
Unknown
Attack Complexity (AC):
Unknown
Privileges Required (PR):
Unknown
User Interaction (UI):
Unknown
Scope (S):
Unknown
Confidentiality (C):
Unknown
Integrity (I):
Unknown
Availability (A):
Unknown

General Information

Offensive Application
Unknown
Utility Class
Unknown
Ports
Unknown
OS
Unknown
Vulnerable Versions
n/a
Prerequisites
Unknown
Discovered By
Unknown
PoC Author
Unknown
Metasploit Module
Unknown
Reporter
Unknown

Vendors

Products

References

Canonical
CVE-2009-1385 (https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1385)
BID-35185 (http://www.securityfocus.com/bid/35185)
Advisory
SECUNIA-35265 (http://secunia.com/advisories/35265)
http://www.mandriva.com/security/advisories?name=MDVSA-2009:135
DSA-1865 (http://www.debian.org/security/2009/dsa-1865)
20100625 VMSA-2010-0010 ESX 3.5 third party update for Service Console kernel (http://www.securityfocus.com/archive/1/512019/100/0/threaded)
http://wiki.rpath.com/Advisories:rPSA-2009-0111
http://sourceforge.net/project/shownotes.php?release_id=504022&group_id=42302
SECUNIA-36131 (http://secunia.com/advisories/36131)
FEDORA-2009-6883 (https://www.redhat.com/archives/fedora-package-announce/2009-June/msg01048.html)
FEDORA-2009-6768 (https://www.redhat.com/archives/fedora-package-announce/2009-June/msg01094.html)
SECUNIA-37471 (http://secunia.com/advisories/37471)
http://www.mandriva.com/security/advisories?name=MDVSA-2009:148
SECUNIA-35656 (http://secunia.com/advisories/35656)
DSA-1844 (http://www.debian.org/security/2009/dsa-1844)
http://www.vmware.com/security/advisories/VMSA-2009-0016.html
http://www.redhat.com/support/errata/RHSA-2009-1193.html
http://www.intel.com/support/network/sb/CS-030543.htm
SECUNIA-35566 (http://secunia.com/advisories/35566)
OSVDB-54892 (http://osvdb.org/54892)
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11598
http://www.redhat.com/support/errata/RHSA-2009-1157.html
20090724 rPSA-2009-0111-1 kernel (http://www.securityfocus.com/archive/1/505254/100/0/threaded)
SECUNIA-35623 (http://secunia.com/advisories/35623)
20091120 VMSA-2009-0016 VMware vCenter and ESX update release and vMA patch release address multiple security issue in third party components (http://www.securityfocus.com/archive/1/507985/100/0/threaded)
SECUNIA-36051 (http://secunia.com/advisories/36051)
SECUNIA-36327 (http://secunia.com/advisories/36327)
USN-793-1 (http://www.ubuntu.com/usn/usn-793-1)
https://bugzilla.redhat.com/show_bug.cgi?id=502981
[oss-security] 20090603 CVE-2009-1385 kernel: e1000_clean_rx_irq() denial of service (http://www.openwall.com/lists/oss-security/2009/06/03/2)
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11681
http://www.kernel.org/pub/linux/kernel/v2.6/testing/ChangeLog-2.6.30-rc8
https://rhn.redhat.com/errata/RHSA-2009-1550.html
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8340
FEDORA-2009-6846 (https://www.redhat.com/archives/fedora-package-announce/2009-June/msg01193.html)
http://git.kernel.org?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=ea30e11970a96cfe5e32c03a29332554573b4a10
http://lists.opensuse.org/opensuse-security-announce/2009-07/msg00004.html
ADV-2009-3316 (http://www.vupen.com/english/advisories/2009/3316)
SECUNIA-35847 (http://secunia.com/advisories/35847)
Miscellaneous
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=ea30e11970a96cfe5e32c03a29332554573b4a10
https://access.redhat.com/errata/RHSA-2009:1132
https://access.redhat.com/errata/RHSA-2009:1157
https://access.redhat.com/errata/RHSA-2009:1193
https://access.redhat.com/errata/RHSA-2009:1550
https://access.redhat.com/errata/RHSA-2010:0079
https://access.redhat.com/security/cve/CVE-2009-1385

Additional Info

Authenticated
Unknown
Exploitable
Unknown
Reliability
Unknown
Stability
Unknown
Available Mitigations
Unknown
Shelf Life
Unknown
Userbase/Installbase
Unknown
Patch Effectiveness
Unknown
Technical Analysis